Lucene search

K
cve[email protected]CVE-2013-0848
HistoryDec 07, 2013 - 9:55 p.m.

CVE-2013-0848

2013-12-0721:55:09
CWE-119
web.nvd.nist.gov
32
cve
2013-0848
ffmpeg
libavcodec
huffyuv.c
decode_init
remote
dos
nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.4%

The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted width in huffyuv data with the predictor set to median and the colorspace set to YUV422P, which triggers an out-of-bounds array access.

Affected configurations

NVD
Node
ffmpegffmpegRange1.0
OR
ffmpegffmpegMatch0.3
OR
ffmpegffmpegMatch0.3.1
OR
ffmpegffmpegMatch0.3.2
OR
ffmpegffmpegMatch0.3.3
OR
ffmpegffmpegMatch0.3.4
OR
ffmpegffmpegMatch0.4.0
OR
ffmpegffmpegMatch0.4.2
OR
ffmpegffmpegMatch0.4.3
OR
ffmpegffmpegMatch0.4.4
OR
ffmpegffmpegMatch0.4.5
OR
ffmpegffmpegMatch0.4.6
OR
ffmpegffmpegMatch0.4.7
OR
ffmpegffmpegMatch0.4.8
OR
ffmpegffmpegMatch0.4.9pre1
OR
ffmpegffmpegMatch0.5
OR
ffmpegffmpegMatch0.5.1
OR
ffmpegffmpegMatch0.5.2
OR
ffmpegffmpegMatch0.5.3
OR
ffmpegffmpegMatch0.5.4
OR
ffmpegffmpegMatch0.5.4.5
OR
ffmpegffmpegMatch0.5.4.6
OR
ffmpegffmpegMatch0.6
OR
ffmpegffmpegMatch0.6.1
OR
ffmpegffmpegMatch0.6.2
OR
ffmpegffmpegMatch0.6.3
OR
ffmpegffmpegMatch0.7
OR
ffmpegffmpegMatch0.7.1
OR
ffmpegffmpegMatch0.7.2
OR
ffmpegffmpegMatch0.7.3
OR
ffmpegffmpegMatch0.7.4
OR
ffmpegffmpegMatch0.7.5
OR
ffmpegffmpegMatch0.7.6
OR
ffmpegffmpegMatch0.7.7
OR
ffmpegffmpegMatch0.7.8
OR
ffmpegffmpegMatch0.7.9
OR
ffmpegffmpegMatch0.7.11
OR
ffmpegffmpegMatch0.7.12
OR
ffmpegffmpegMatch0.8.0
OR
ffmpegffmpegMatch0.8.1
OR
ffmpegffmpegMatch0.8.2
OR
ffmpegffmpegMatch0.8.5
OR
ffmpegffmpegMatch0.8.5.3
OR
ffmpegffmpegMatch0.8.5.4
OR
ffmpegffmpegMatch0.8.6
OR
ffmpegffmpegMatch0.8.7
OR
ffmpegffmpegMatch0.8.8
OR
ffmpegffmpegMatch0.8.10
OR
ffmpegffmpegMatch0.8.11
OR
ffmpegffmpegMatch0.9
OR
ffmpegffmpegMatch0.9.1
OR
ffmpegffmpegMatch0.10
OR
ffmpegffmpegMatch0.10.3
OR
ffmpegffmpegMatch0.10.4
OR
ffmpegffmpegMatch0.11

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.4%